This article describes OpenID Connect in Smart ID Digital Access component.
What is OpenID Connect?
OpenID Connect is a federation technology, comparable with SAML 2.0, that is implemented as an identity layer on top of the OAuth 2.0 protocol.
Several digital identities, such as Norwegian BankID and Verimi, are based on OpenID Connect.
OpenID Connect concepts
Relying party (RP)
An OAuth 2.0 client application requiring end-user authentication and claims from an OpenID provider.
- OpenID provider (OP)
An OAuth 2.0 authorization server that authenticates the end-user and provides claims to a relying party about the authentication event and the end-user.
Piece of information asserted about an entity.
The permissions a client is allowed to ask for.
An OAuth 2.0 authorization request using extension parameters and scopes defined by OpenID Connect. The request is that the end-user shall be authenticated by the authorization server, which is an OpenID provider, to the client, which is a relying party.